Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/on1XJg1gA-Dw1V_zFlQX0jUvUB0.roa
File: on1XJg1gA-Dw1V_zFlQX0jUvUB0.roa (raw, json)
Hash identifier: 0CbZ9SPvQ1I4F8MEVUPTdHCZPfrFeUI5cb+qAfN8HeU=
Subject key identifier: A2:7D:57:26:0D:60:03:E0:F0:D5:5F:F3:16:54:17:D2:35:2F:50:1D
Certificate issuer: /CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Certificate serial: 0281BBD4
Authority key identifier: 3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/on1XJg1gA-Dw1V_zFlQX0jUvUB0.roa
Signing time: Thu 02 Jun 2022 16:43:20 +0000
ROA not before: Thu 02 Jun 2022 16:43:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14445
IP address blocks: 80.73.247.0/24 maxlen: 24
2a11:1680:16::/48 maxlen: 48
2a11:1680:1::/48 maxlen: 48
2a11:1680:c::/48 maxlen: 48
2a11:1680:1c::/48 maxlen: 48
2a11:1680:17::/48 maxlen: 48
2a11:1680:1a::/48 maxlen: 48
2a11:1680:a::/48 maxlen: 48
2a11:1680:15::/48 maxlen: 48
2a11:1680:5::/48 maxlen: 48
2a11:1680::/48 maxlen: 48
2a11:1680:b::/48 maxlen: 48
2a11:1680:1b::/48 maxlen: 48
2a11:1680:e::/48 maxlen: 48
2a11:1680:1e::/48 maxlen: 48
2a11:1680:14::/48 maxlen: 48
2a11:1680:1f::/48 maxlen: 48
2a11:1680:f::/48 maxlen: 48
2a11:1680:2::/48 maxlen: 48
2a11:1680:1d::/48 maxlen: 48
2a11:1680:d::/48 maxlen: 48
2a11:1680:18::/48 maxlen: 48
2a11:1680:13::/48 maxlen: 48
2a11:1680:3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42056660 (0x281bbd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d92bc045ab9cc9f017e8bf7ffe423da804a614f
Validity
Not Before: Jun 2 16:43:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a27d57260d6003e0f0d55ff3165417d2352f501d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e7:3b:f7:7a:0f:ba:90:d0:5d:ba:ca:cc:9c:
2e:df:95:86:23:f6:28:3d:21:c2:6f:52:7c:f6:ff:
5d:e8:43:77:ef:92:e6:d7:c6:40:29:3b:6d:9f:39:
1f:ad:be:cd:ed:be:86:60:d6:ce:55:6a:6c:bc:01:
50:1c:a7:de:b6:69:d0:de:9d:8a:e2:97:ec:8f:e6:
e7:54:9e:5b:01:5b:c4:1d:c7:5b:69:58:3a:d7:95:
0b:bd:42:c8:fd:f5:fe:c7:47:c2:81:6b:08:5f:1e:
df:f2:ad:9f:cb:d4:db:42:d3:b3:60:8d:a2:0d:c5:
fe:89:81:7a:a7:1d:92:5a:ab:33:66:e9:04:20:fb:
9f:c4:4e:3c:03:08:e7:ab:ce:30:88:1d:56:9e:9c:
ee:bc:b8:d6:a8:31:c0:73:ac:dc:36:fb:ca:dc:b2:
e2:88:08:98:fd:a5:bc:fe:c3:1f:26:65:92:10:f3:
03:d0:2f:79:d3:b3:6f:88:7e:4c:bc:bd:38:9c:61:
0f:36:f9:70:14:28:38:d0:ca:78:73:72:ba:87:92:
28:04:c1:49:e7:6f:f7:c3:29:2b:c5:68:3a:72:01:
76:c4:75:42:fb:a7:5d:16:26:e0:77:a3:c7:bb:04:
42:e6:db:1b:c4:82:d5:c3:74:a4:ff:da:83:2b:4c:
05:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7D:57:26:0D:60:03:E0:F0:D5:5F:F3:16:54:17:D2:35:2F:50:1D
X509v3 Authority Key Identifier:
keyid:3D:92:BC:04:5A:B9:CC:9F:01:7E:8B:F7:FF:E4:23:DA:80:4A:61:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/on1XJg1gA-Dw1V_zFlQX0jUvUB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/3626dc-221f-4b9a-bb68-3e3812ffa147/1/PZK8BFq5zJ8Bfov3_-Qj2oBKYU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.247.0/24
IPv6:
2a11:1680::/46
2a11:1680:5::/48
2a11:1680:a::-2a11:1680:f:ffff:ffff:ffff:ffff:ffff
2a11:1680:13::-2a11:1680:18:ffff:ffff:ffff:ffff:ffff
2a11:1680:1a::-2a11:1680:1f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
88:2d:a0:f7:13:dd:4d:fe:e3:16:b3:6b:09:b4:d4:97:cf:08:
4a:19:9d:27:bd:cd:d6:7f:26:b0:40:17:9a:bd:0f:ed:32:85:
37:12:8d:dc:df:6b:35:a0:d0:20:28:89:cd:b4:d6:f4:fd:3c:
24:c8:1d:8e:c7:cb:af:f0:2c:58:1f:51:48:16:26:fa:76:3c:
48:52:f2:3d:7d:dd:e7:f7:02:58:62:76:f1:b2:31:e0:16:98:
68:6b:03:3b:1b:1c:0c:80:6f:c1:ce:a4:84:6f:d8:7b:71:6d:
a4:af:ef:01:12:ea:93:38:5e:b9:36:68:3a:09:92:b9:7b:c3:
f7:69:ea:bd:af:5e:5f:b7:69:38:14:8d:32:66:aa:68:34:8b:
98:4a:f7:28:9c:e3:b9:47:8b:2c:77:a0:fe:c0:1d:94:52:22:
90:a9:28:d9:c2:eb:45:c1:5b:f0:a7:5c:e4:82:e3:77:d3:63:
e0:1f:a0:01:2e:97:d2:ed:ba:66:7c:4c:79:2f:08:2b:5f:3c:
b7:c7:34:f8:63:fb:02:38:41:80:61:6d:ae:6e:f0:9b:2c:bd:
96:90:b5:4e:84:d6:40:86:99:78:ce:23:36:86:d9:69:b0:ed:
e5:4d:40:bc:7f:97:a7:a2:5a:cb:42:c3:6a:7c:89:e7:67:8c:
b0:c4:4b:eb
-----BEGIN CERTIFICATE-----
MIIFRTCCBC2gAwIBAgIEAoG71DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
ZDkyYmMwNDVhYjljYzlmMDE3ZThiZjdmZmU0MjNkYTgwNGE2MTRmMB4XDTIyMDYw
MjE2NDMyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTI3ZDU3MjYwZDYw
MDNlMGYwZDU1ZmYzMTY1NDE3ZDIzNTJmNTAxZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMbnO/d6D7qQ0F26ysycLt+VhiP2KD0hwm9SfPb/XehDd++S
5tfGQCk7bZ85H62+ze2+hmDWzlVqbLwBUByn3rZp0N6diuKX7I/m51SeWwFbxB3H
W2lYOteVC71CyP31/sdHwoFrCF8e3/Ktn8vU20LTs2CNog3F/omBeqcdklqrM2bp
BCD7n8ROPAMI56vOMIgdVp6c7ry41qgxwHOs3Db7ytyy4ogImP2lvP7DHyZlkhDz
A9AvedOzb4h+TLy9OJxhDzb5cBQoONDKeHNyuoeSKATBSedv98MpK8VoOnIBdsR1
QvunXRYm4Hejx7sEQubbG8SC1cN0pP/agytMBXsCAwEAAaOCAl8wggJbMB0GA1Ud
DgQWBBSifVcmDWAD4PDVX/MWVBfSNS9QHTAfBgNVHSMEGDAWgBQ9krwEWrnMnwF+
i/f/5CPagEphTzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1BaSzhCRnE1eko4QmZvdjNfLVFqMm9CS1lVOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDMvMzYyNmRjLTIyMWYtNGI5YS1iYjY4LTNlMzgxMmZmYTE0Ny8x
L29uMVhKZzFnQS1EdzFWX3pGbFFYMGpVdlVCMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDMv
MzYyNmRjLTIyMWYtNGI5YS1iYjY4LTNlMzgxMmZmYTE0Ny8xL1BaSzhCRnE1eko4
QmZvdjNfLVFqMm9CS1lVOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB1
BggrBgEFBQcBBwEB/wRmMGQwDAQCAAEwBgMEAFBJ9zBUBAIAAjBOAwcCKhEWgAAA
AwcAKhEWgAAFMBIDBwEqERaAAAoDBwQqERaAAAAwEgMHACoRFoAAEwMHACoRFoAA
GDASAwcBKhEWgAAaAwcFKhEWgAAAMA0GCSqGSIb3DQEBCwUAA4IBAQCILaD3E91N
/uMWs2sJtNSXzwhKGZ0nvc3WfyawQBeavQ/tMoU3Eo3c32s1oNAgKInNtNb0/Twk
yB2Ox8uv8CxYH1FIFib6djxIUvI9fd3n9wJYYnbxsjHgFphoawM7GxwMgG/BzqSE
b9h7cW2kr+8BEuqTOF65Nmg6CZK5e8P3aeq9r15ft2k4FI0yZqpoNIuYSvconOO5
R4ssd6D+wB2UUiKQqSjZwutFwVvwp1zkguN302PgH6ABLpfS7bpmfEx5LwgrXzy3
xzT4Y/sCOEGAYW2ubvCbLL2WkLVOhNZAhpl4ziM2htlpsO3lTUC8f5enolrLQsNq
fInnZ4ywxEvr
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:21 2023 by rpki-client on console-ams.rpki-client.org